home

session_win.exe

Alberto banon serrano

Publisher:
Alberto banon serrano  (signed and verified)

MD5:
6577e8b286522d302a95a3c2b5fe614c

SHA-1:
f9b56bcc3ac0b1469db7fc3d9d05e82e24266467

SHA-256:
b89fc353ae68d3f3d5f000b1087d7ca6b393443b081abdc400735d325c5dba21

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
11/24/2024 6:58:14 PM UTC  (today)

File size:
69.5 KB (71,192 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\appdata\roaming\jwrapper-salapostal\jwrapper-salapostal-00040499943-complete\session_win.exe

Digital Signature
Signed by:
Alberto banon serrano

Authority:
COMODO CA Limited

Valid from:
9/2/2014 9:00:00 PM

Valid to:
9/2/2016 8:59:59 PM

Subject:
CN=Alberto banon serrano, O=Alberto banon serrano, STREET=Calle Sebastian de la Plaza, STREET=n 2 esc 2 5-1, L=alcala de henares, S=madrid, PostalCode=28805, C=ES

Issuer:
CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
1935EDFB82C8BA0544FAF9C4543F910E

File PE Metadata
Compilation timestamp:
2/12/2015 2:30:18 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
8.0

CTPH (ssdeep):
768:I2APuu2p7RKO6MsS7CHGMubgAxkDZcA9mPuD4YkJol+0l90QQDGko858:IyuWRnCMbpcZDImD4Uo0EQQCe58

Entry address:
0x248B

Entry point:
E8, 87, 38, 00, 00, E9, 41, FE, FF, FF, 55, 8B, EC, 81, EC, 28, 03, 00, 00, A3, C8, F0, 40, 00, 89, 0D, C4, F0, 40, 00, 89, 15, C0, F0, 40, 00, 89, 1D, BC, F0, 40, 00, 89, 35, B8, F0, 40, 00, 89, 3D, B4, F0, 40, 00, 66, 8C, 15, E0, F0, 40, 00, 66, 8C, 0D, D4, F0, 40, 00, 66, 8C, 1D, B0, F0, 40, 00, 66, 8C, 05, AC, F0, 40, 00, 66, 8C, 25, A8, F0, 40, 00, 66, 8C, 2D, A4, F0, 40, 00, 9C, 8F, 05, D8, F0, 40, 00, 8B, 45, 00, A3, CC, F0, 40, 00, 8B, 45, 04, A3, D0, F0, 40, 00, 8D, 45, 08, A3, DC, F0, 40, 00, 8B...
 
[+]

Code size:
40 KB (40,960 bytes)

Scan session_win.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.